$ rpki-client -vvf rpki.apnic.net/member_repository/A911C2E1/9047EF04468A11EE879EB535C4F9AE02/3FE30722468C11EE9462EC3AC4F9AE02.roa File: 3FE30722468C11EE9462EC3AC4F9AE02.roa (raw, json) Hash identifier: o+8Fy4IhkWW7G4Uk/EsnJxZOcEEm8/z0XbRWxhegY4Q= Subject key identifier: D7:79:7E:0D:B8:5E:54:5C:67:98:99:CF:52:E8:6C:DE:DC:A2:5A:9C Certificate issuer: /CN=A911C2E1/serialNumber=D4BC79A4B1537FEB0AD92EB3F0A7CAF3453A8F52 Certificate serial: C8 Authority key identifier: D4:BC:79:A4:B1:53:7F:EB:0A:D9:2E:B3:F0:A7:CA:F3:45:3A:8F:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Lx5pLFTf-sK2S6z8KfK80U6j1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C2E1/9047EF04468A11EE879EB535C4F9AE02/3FE30722468C11EE9462EC3AC4F9AE02.roa Signing time: Tue 17 Sep 2024 03:58:02 +0000 ROA not before: Tue 17 Sep 2024 03:58:02 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 396982 IP address blocks: 103.248.10.0/24 maxlen: 24 103.248.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C2E1/9047EF04468A11EE879EB535C4F9AE02/1Lx5pLFTf-sK2S6z8KfK80U6j1I.crl rsync://rpki.apnic.net/member_repository/A911C2E1/9047EF04468A11EE879EB535C4F9AE02/1Lx5pLFTf-sK2S6z8KfK80U6j1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Lx5pLFTf-sK2S6z8KfK80U6j1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C2E1 Validity Not Before: Sep 17 03:58:02 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e8fe4a-09a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9c:5f:17:03:b6:c4:ea:ff:d8:6a:af:2b:a3: 5f:56:59:56:e7:25:d9:a8:4a:10:5b:8d:3c:6b:dc: 9d:ba:61:60:b4:1f:10:be:40:ef:1d:aa:77:05:8b: 62:9f:ce:a9:15:c1:87:b1:ba:22:72:94:33:d0:97: 9d:55:17:71:d2:ba:cd:d7:85:c7:1f:ea:e1:9b:94: ae:51:ad:23:ca:f0:5a:27:96:2f:a1:17:bc:34:60: d9:a8:0c:bc:f1:4f:15:69:f2:b9:8d:6d:28:27:39: c8:c7:d1:59:96:4b:57:aa:ab:6f:85:52:cd:c5:d8: 8b:40:a4:65:b7:af:01:2c:03:25:22:ef:f0:d5:c9: 45:65:9e:b7:20:15:37:bd:5e:98:52:74:91:02:4c: 5c:7b:f7:b3:41:67:68:46:5b:49:7b:d5:9e:2a:2e: 5c:b8:e3:c7:85:0f:f8:38:22:05:a0:6b:0d:4a:b5: 71:f0:96:de:60:4e:ec:d0:9d:9c:b6:df:f4:72:f0: b4:11:55:0e:07:4b:79:98:3a:54:94:c5:7d:d0:9c: 9a:a0:e3:34:37:73:24:a8:80:b4:63:c3:73:6f:8d: d5:f7:7a:45:38:c7:a0:4b:ed:d6:d4:af:e6:3c:b0: 9c:aa:19:39:4e:79:86:47:b3:f6:74:8c:4d:ee:c2: 5b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:79:7E:0D:B8:5E:54:5C:67:98:99:CF:52:E8:6C:DE:DC:A2:5A:9C X509v3 Authority Key Identifier: keyid:D4:BC:79:A4:B1:53:7F:EB:0A:D9:2E:B3:F0:A7:CA:F3:45:3A:8F:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C2E1/9047EF04468A11EE879EB535C4F9AE02/1Lx5pLFTf-sK2S6z8KfK80U6j1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Lx5pLFTf-sK2S6z8KfK80U6j1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C2E1/9047EF04468A11EE879EB535C4F9AE02/3FE30722468C11EE9462EC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.10.0/23 Signature Algorithm: sha256WithRSAEncryption c3:4c:0e:c4:12:f0:b3:7a:6a:e9:eb:82:62:25:28:e3:37:36: 43:e2:22:ca:cc:51:16:0d:d0:d8:44:ee:c0:ee:4e:45:66:27: 81:bd:fe:e9:96:7c:2d:bc:26:43:90:19:97:ee:b8:ad:ae:f8: f6:9c:17:92:71:3b:3b:25:a7:70:fd:29:78:df:09:60:a1:5e: d6:50:b2:98:c8:e9:43:66:9c:99:3c:38:21:49:ae:a1:ac:9f: e0:97:bd:36:73:34:cd:b8:4c:7e:ea:f1:4d:11:f0:7e:c5:f6: 16:e5:5f:22:5c:e6:c4:83:f7:7c:27:63:67:b1:0e:40:aa:1d: ee:30:67:1e:5c:e6:99:92:e7:0a:45:38:a3:f7:54:d5:bd:c8: 89:96:b9:3b:11:24:8b:80:e2:ad:42:05:8c:a8:05:44:15:2f: f8:b2:fa:03:e5:a2:4e:9e:98:a2:f3:86:0a:c2:6b:89:a0:21: aa:96:cf:2d:4a:1b:f5:38:62:1b:54:32:cb:41:ea:c0:e6:55: 4e:e7:c7:ee:8d:27:20:9b:97:ef:3f:20:2d:94:c4:e8:d1:2b: 67:ac:1e:50:b2:6c:23:64:7a:d2:55:10:6d:75:4a:46:ed:0b: 87:7e:a1:69:ec:74:20:30:a9:e4:c4:90:2c:f8:9b:33:8a:c5: bc:76:ed:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyRTExMTAvBgNVBAUTKEQ0QkM3OUE0QjE1MzdGRUIwQUQ5MkVCM0YwQTdDQUYz NDUzQThGNTIwHhcNMjQwOTE3MDM1ODAyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4ZmU0YS0wOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJxfFwO2xOr/2GqvK6NfVllW5yXZqEoQW408a9ydumFgtB8QvkDvHap3BYti n86pFcGHsboicpQz0JedVRdx0rrN14XHH+rhm5SuUa0jyvBaJ5YvoRe8NGDZqAy8 8U8VafK5jW0oJznIx9FZlktXqqtvhVLNxdiLQKRlt68BLAMlIu/w1clFZZ63IBU3 vV6YUnSRAkxce/ezQWdoRltJe9WeKi5cuOPHhQ/4OCIFoGsNSrVx8JbeYE7s0J2c tt/0cvC0EVUOB0t5mDpUlMV90JyaoOM0N3MkqIC0Y8Nzb43V93pFOMegS+3W1K/m PLCcqhk5TnmGR7P2dIxN7sJbMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNd5fg24 XlRcZ5iZz1LobN7colqcMB8GA1UdIwQYMBaAFNS8eaSxU3/rCtkus/CnyvNFOo9S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzJFMS85MDQ3RUYwNDQ2 OEExMUVFODc5RUI1MzVDNEY5QUUwMi8xTHg1cExGVGYtc0syUzZ6OEtmSzgwVTZq MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFMeDVwTEZUZi1zSzJTNno4S2ZLODBVNmoxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyRTEvOTA0N0VGMDQ0NjhBMTFFRTg3OUVCNTM1QzRGOUFFMDIvM0ZFMzA3MjI0 NjhDMTFFRTk0NjJFQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn+AowDQYJKoZIhvcNAQELBQADggEBAMNMDsQS8LN6aunr gmIlKOM3NkPiIsrMURYN0NhE7sDuTkVmJ4G9/umWfC28JkOQGZfuuK2u+PacF5Jx Ozslp3D9KXjfCWChXtZQspjI6UNmnJk8OCFJrqGsn+CXvTZzNM24TH7q8U0R8H7F 9hblXyJc5sSD93wnY2exDkCqHe4wZx5c5pmS5wpFOKP3VNW9yImWuTsRJIuA4q1C BYyoBUQVL/iy+gPlok6emKLzhgrCa4mgIaqWzy1KG/U4YhtUMstB6sDmVU7nx+6N JyCbl+8/IC2UxOjRK2esHlCybCNketJVEG11SkbtC4d+oWnsdCAwqeTEkCz4mzOK xbx27Z8= -----END CERTIFICATE-----Generated at Sun Feb 16 15:23:49 2025 by rpki-client